Vulnerability in Revenera Installshield
CVE-2023-29080
Potential privilege escalation vulnerability in Revenera InstallShield versions 2022 R2 and 2021 R2 due to adding InstallScript custom action to a Basic MSI or InstallScript MSI project extracting few binaries to a predefined writable fold…
EPSS: 0.002 (6.4th percentile) — read the EPSS interpretation.
Affected products
- Revenera Installshield — versions 2022 R2, 2021 R2
Weakness classification (CWE)
References
- PSIRT-CNA@flexerasoftware.com (vendor-advisory)